Showing 1 - 3 of 3

CVE-2021-4112

Status Candidate

Overview

A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape. This flaw allows an attacker to elevate the privilege from a low privileged user to an AWX user from outside the isolated environment.

Related Files

Red Hat Security Advisory 2022-0482-01: Posted Feb 9, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-0482-01 - Red Hat Ansible Tower provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Tower makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language. Issues addressed include a privilege escalation vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-4112; SHA-256 | 28459881165934293900b4a0954054c6415064367de18c25933d5847235a8b75; Download | Favorite | View

Red Hat Security Advisory 2022-0474-01: Posted Feb 9, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-0474-01 - Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language. Issues addressed include a privilege escalation vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-4112; SHA-256 | bcc7f1b018296b35c4f80b89cf17117785974b75dd4439176cf6e69dd49e4651; Download | Favorite | View

Red Hat Security Advisory 2022-0460-01: Posted Feb 9, 2022; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2022-0460-01 - Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language. Issues addressed include a privilege escalation vulnerability.; tags | advisory; systems | linux, redhat; advisories | CVE-2021-4112; SHA-256 | 987e43d58469405d01db47cc21bc269d1cd5e9b6ef6b738061da18114d7b8cf1; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 221 files
Ubuntu 59 files
Debian 30 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
tmrswrr 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,298)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,550)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,453)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

CVE-2021-4112

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems